• State Suggested Answer
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 16 subscribers
  • Views 582 views
  • Users 0 members are here
Options
Related

API security with Cookie Authentication Single-Sign-On

Chris Auer

We are using Cookie Authentication Single-Sign-On Client to sign the users in. We are going to allow the user to see and submit new replies on a 2rd party site within the same domain (so the cookie still works). I am wondering how it can get the authentication out of the cookie, or use the cookie to make API calls?

I seems I can provide a Rest-User-Token in the header, use OAuth or do all the work in a widget where the telligent jQuery will handle the authentication.

Is there a way I can use the cookie authentication security make an API call?

Parents Reply Children
  • 0 in reply to Patrick M.

    Thanks   In Telligent jquery a POSTjQuery.telligent.evolution.post, it apparently uses 2 things. Both of them are cookies.

    Cookies

    • CommunityAuthToken
    • AuthorizationCookie

    In this case, CommunityAuthToken is my authentication cookie for Telligent. And AuthorizationCookie is a cookie that is being dropped inside of Telligent site. With these two cookies, I can make a call tro my custom API /api.ashx/v2/customer/blahblah. 

    So I have the CommunityAuthToken , but I don't have the AuthorizationCookie since it is sub domain specific. 

    Can i make AuthorizationCookie a domain cookie?

About
Privacy Policy
Terms of use
Copyright 2024 Verint, Inc.
Powered by Verint Community